Re: Security labels

L9nW4Cyj41YWd1UkI4ZXVPYmM >>> >>> Thanks, >>> >>> Oleg >>> >>> On Fri, Jan 29, 2016 at 3:28 PM, Dani Traphagen < >>> dani.trapha...@datastax.com> wrote: >>> >>>> ​Hi Oleg, >>>> >>>> Thanks

Re: Security labels

http://iase.disa.mil/stigs/Pages/a-z.aspx) available for every security >> architect to utilize, which would greatly reduce the risk for Cassandra >> product to be hacked in a field. >> >> To clear things out - what I ask about are not my expectations. I really >> do not expe

Re: Security labels

lped clear things up! This sounds like a daunting task. I >> wish you all the best with it. >> >> Cheers, >> Dani​ >> >> On Fri, Jan 29, 2016 at 10:03 AM, oleg yusim <olegyu...@gmail.com> wrote: >> >>> Dani, >>> >>> I really appreciate you respo

Re: Security labels

h it. >>> >>> Cheers, >>> Dani​ >>> >>> On Fri, Jan 29, 2016 at 10:03 AM, oleg yusim <olegyu...@gmail.com> >>> wrote: >>> >>>> Dani, >>>> >>>> I really appreciate you response. Actually, sess

Re: Security labels

trapha...@datastax.com> wrote: > >> ​Hi Oleg, >> >> Thanks that helped clear things up! This sounds like a daunting task. I >> wish you all the best with it. >> >> Cheers, >> Dani​ >> >> On Fri, Jan 29, 2016 at 10:03 AM, oleg yusim <olegyu...@gm

Re: Security labels

t;>> ​Hi Oleg, >>> >>> Thanks that helped clear things up! This sounds like a daunting task. I >>> wish you all the best with it. >>> >>> Cheers, >>> Dani​ >>> >>> On Fri, Jan 29, 2016 at 10:03 AM, oleg yusim <olegyu...@gmail.com>

Re: Security labels

Jack, Thanks for your suggestion. I'm familiar with Cassandra documentation, and I'm aware of differences between DSE and Cassandra. Questions I ask here are those, I found no mention about in documentation. Let's take security labels for instance. Cassandra documentation is completely silent

Security labels

r your suggestion. I'm familiar with Cassandra documentation, and > I'm aware of differences between DSE and Cassandra. > > Questions I ask here are those, I found no mention about in documentation. > Let's take security labels for instance. Cassandra documentation is > completely silent on

Re: Security labels

To answer any future questions along these same lines, I suggest that you start by simply searching the doc and search the github repo for the source code for the relevant keywords. That will give you the definitive answers quickly. If something is missing, feel free to propose that it be added

Re: Security labels

Dani, I really appreciate you response. Actually, session timeouts and security labels are two different topics (first is about attack when somebody opened, say, ssh window to DB, left his machine unattended and somebody else stole his session, second - to enable DB to support what called MAC

Re: Security labels

Also -- it looks like you're really asking questions about session timeouts and security labels as they associate, would be more helpful to keep in one thread. :) On Friday, January 29, 2016, Dani Traphagen <dani.trapha...@datastax.com> wrote: > Hi Oleg, > > I understand y

Re: Security labels

29, 2016 at 10:03 AM, oleg yusim <olegyu...@gmail.com> wrote: > >> Dani, >> >> I really appreciate you response. Actually, session timeouts and security >> labels are two different topics (first is about attack when somebody >> opened, say, ssh window to DB, le

Re: Security labels

; > To clear things out - what I ask about are not my expectations. I really > do not expect developers of Cassandra to run and start implementing > security labels, just because I asked about it. :) My questions are to > build my internal knowledge of DB current design, so that I can build my >

Security labels

Greetings, Does Cassandra support security label concept? If so, where can I read on how it should be applied? Thanks, Oleg

Re: Security labels

Cassandra has support for authentication security, but I'm not familiar with a security label. Can you describe what you want to do? Patrick On Thu, Jan 28, 2016 at 2:26 PM, oleg yusim wrote: > Greetings, > > Does Cassandra support security label concept? If so, where can

Re: Security labels

Patrick, Absolutely. Security label is mechanism of access control, utilized by MAC (mandatory access control) model, and not utilized by DAC (discretionary access control) model, we all are used to. In database content it is illustrated for instance here: